9 matches found
Design/Logic Flaw
The dophysdevop function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the 1 PHYSDEVOPpreparemsix and 2 PHYSDEVOPreleasemsix operations, which allows local PV guests to cause a denial of service host or guest malfunction or possibly gain privileges via...
CVE-2014-1666
The dophysdevop function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the 1 PHYSDEVOPpreparemsix and 2 PHYSDEVOPreleasemsix operations, which allows local PV guests to cause a denial of service host or guest malfunction or possibly gain privileges via...
CVE-2014-1666
The dophysdevop function in Xen 4.1.5, 4.1.6.1, 4.2.2 through 4.2.3, and 4.3.x does not properly restrict access to the 1 PHYSDEVOPpreparemsix and 2 PHYSDEVOPreleasemsix operations, which allows local PV guests to cause a denial of service host or guest malfunction or possibly gain privileges via...
Fedora 17 : xen-4.1.5-6.fc17 (2013-10929)
Revised fixes for XSA-55 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
Fedora 17 : xen-4.1.5-5.fc17 (2013-10247)
Information leak on XSAVE/XRSTOR capable AMD CPUs XSA-52, CVE-2013-2076 970206 Hypervisor crash due to missing exception recovery on XRSTOR XSA-53, CVE-2013-2077 970204 Hypervisor crash due to missing exception recovery on XSETBV XSA-54, CVE-2013-2078 970202 Multiple vulnerabilities in libelf PV...
[SECURITY] Fedora 17 Update: xen-4.1.5-5.fc17
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
Fedora 17 : xen-4.1.5-4.fc17 (2013-8571)
xend toolstack doesn't check bounds for VCPU affinity XSA-56, CVE-2013-2072 xen-devel should require libuuid-devel, pygrub menu items can include too much text Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...
Fedora 17 : xen-4.1.5-2.fc17 (2013-7432)
PV guests can use non-preemptible long latency operations to mount a denial of service attack on the whole system XSA-45, CVE-2013-1918, malicious guests can inject interrupts through bridge devices to mount a denial of service attack on the whole system XSA-49, CVE-2013-1952 Note that Tenable...
Fedora 17 : xen-4.1.5-1.fc17 (2013-6723)
Thu Apr 25 2013 Michael Young - 4.1.5-1 - update to xen-4.1.5 includes fixes for passed through IRQs or PCI devices might allow denial of service attack XSA-46, CVE-2013-1919 953568 SYSENTER in 32-bit PV guests on 64-bit xen can crash hypervisor XSA-44, CVE-2013-1917 953569 grant releases can...